CVE-2019-16159

Name of the Vulnerable Software and Affected Versions BIRD Internet Routing Daemon versions 1.6.x through 1.6.7 BIRD Internet Routing Daemon versions 2.x through 2.0.5

Description The issue is related to a stack-based buffer overflow in the BGP daemon's support for RFC 8203 administrative shutdown communication messages. This occurs due to an incorrect logical expression when checking the validity of an input message. Sending a shutdown communication with a sufficient message length can cause a four-byte overflow, with two of the overflow bytes being attacker-controlled and two being fixed. The vulnerability is associated with unverified copying of buffer data, which can be exploited by a remote attacker to cause a denial of service.

Recommendations For BIRD Internet Routing Daemon versions 1.6.x through 1.6.7, consider disabling the BGP daemon's support for RFC 8203 administrative shutdown communication messages until a patch is available. For BIRD Internet Routing Daemon versions 2.x through 2.0.5, restrict access to the BGP daemon to minimize the risk of exploitation. As a temporary workaround, avoid using the BGP daemon for RFC 8203 administrative shutdown communication messages until the issue is resolved.